1. Trang chủ
  2. Công Nghệ Thông Tin

Tài liệu DNS on Windows 2000 pptx

314 434 0
Tài liệu DNS on Windows 2000 pptx

Đang tải... (xem toàn văn)

Tài liệu hạn chế xem trước, để xem đầy đủ mời bạn chọn Tải xuống

Thông tin tài liệu

- 1 - DNS on Windows 2000, 2nd Edition C op y r ig ht © 2001 O ' R e il l y & A ssoc ia te s, I nc . A l l r ig hts r e se r v e d. P r inte d in the U nite d Sta te s of A m e r ic a . P u b l ishe d b y O ' R e il l y & A ssoc ia te s, I nc . , 1 01 M or r is Str e e t, Se b a stop ol , C A 9 5 4 7 2. Nu tshe l l H a ndb ook , the Nu tshe l l H a ndb ook l og o, a nd the O ' R e il l y l og o a r e r e g iste r e d tr a de m a r k s of O ' R e il l y & A ssoc ia te s, I nc . T he a ssoc ia tion b e twe e n the im a g e of a r a v e n a nd DNS on Windows 2000 is a tr a de m a r k of O ' R e il l y & A ssoc ia te s, I nc . M a ny of the de sig na tions u se d b y m a nu f a c tu r e r s a nd se l l e r s to disting u ish the ir p r odu c ts a r e c l a im e d a s tr a de m a r k s. Whe r e those de sig na tions a p p e a r in this b ook , a nd O ' R e il l y & A ssoc ia te s, I nc . wa s a wa r e of a tr a de m a r k c l a im , the de sig na tions ha v e b e e n p r inte d in c a p s or initia l c a p s. Whil e e v e r y p r e c a u tion ha s b e e n ta k e n in the p r e p a r a tion of this b ook , the p u b l ishe r a ssu m e s no r e sp onsib il ity f or e r r or s or om issions, or f or da m a g e s r e su l ting f r om the u se of the inf or m a tion c onta ine d he r e in. Whil e e v e r y p r e c a u tion ha s b e e n ta k e n in the p r e p a r a tion of this b ook , the p u b l ishe r a ssu m e s no r e sp onsib il ity f or e r r or s or om issions, or f or da m a g e s r e su l ting f r om the u se of the inf or m a tion c onta ine d he r e in. - 2 - - 3 - DNS on Windows 2000, 2nd Edition Preface V ers i o n s W h at ' s N ew i n T h i s E d i t i o n O rg an i z at i o n A u d i en ce O b t ai n i n g t h e E x am p l e Pro g ram s C o n v en t i o n s U s ed i n T h i s B o o k H o w t o C o n t act U s Q u o t at i o n s A ck n o w l ed g m en t s 1 . B ack g ro u n d 1 . 1 A ( V ery ) B ri ef H i s t o ry o f t h e I n t ern et 1 . 2 O n t h e I n t ern et an d I n t ern et s 1 . 3 T h e D o m ai n N am e S y s t em , i n a N u t s h el l 1 . 4 T h e H i s t o ry o f t h e M i cro s o ft D N S S erv er 1 . 5 M u s t I U s e D N S ? 2 . H o w D o es D N S W o rk ? 2 . 1 T h e D o m ai n N am es p ace 2 . 2 T h e I n t ern et D o m ai n N am es p ace 2 . 3 D el eg at i o n 2 . 4 N am e S erv ers an d Z o n es 2 . 5 R es o l v ers 2 . 6 R es o l u t i o n 2 . 7 C ach i n g 3 . W h ere D o I S t art ? 3 . 1 W h i ch N am e S erv er? 3 . 2 C h o o s i n g a D o m ai n N am e 4 . S et t i n g U p t h e M i cro s o ft D N S S erv er 4 . 1 O u r Z o n e 4 . 2 T h e D N S C o n s o l e 4 . 3 S et t i n g U p D N S D at a 4 . 4 R u n n i n g a Pri m ary M as t er N am e S erv er 4 . 5 R u n n i n g a S l av e N am e S erv er 4 . 6 A d d i n g M o re Z o n es 4 . 7 D N S Pro p ert i es 4 . 8 W h at N ex t ? 5 . D N S an d E l ect ro n i c M ai l 5 . 1 M X R eco rd s 5 . 2 A d d i n g M X R eco rd s w i t h t h e D N S C o n s o l e 5 . 3 W h at ' s a M ai l E x ch an g er, A g ai n ? 5 . 4 T h e M X A l g o ri t h m 5 . 5 D N S an d E x ch an g e 6 . C o n fi g u ri n g H o s t s 6 . 1 T h e R es o l v er 6 . 2 R es o l v er C o n fi g u rat i o n 6 . 3 A d v an ced R es o l v er F eat u res 6 . 4 O t h er W i n d o w s R es o l v ers - 4 - 6 . 5 S a m p l e R e s o l v e r C o n f i g u r a t i o n s 7 . M a i n t a i n i n g t h e M i c r o s o f t D N S S e r v e r 7 . 1 W h a t A b o u t S i g n a l s ? 7 . 2 L o g g i n g 7 . 3 U p d a t i n g Z o n e D a t a 7 . 4 Z o n e D a t a F i l e C o n t r o l s 8 . G r o w i n g Y o u r D o m a i n 8 . 1 H o w M a n y N a m e S e r v e r s ? 8 . 2 A d d i n g M o r e N a m e S e r v e r s 8 . 3 R e g i s t e r i n g N a m e S e r v e r s 8 . 4 C h a n g i n g T T L s 8 . 5 P l a n n i n g f o r D i s a s t e r s 8 . 6 C o p i n g w i t h D i s a s t e r 9 . P a r e n t i n g 9 . 1 W h e n t o B e c o m e a P a r e n t 9 . 2 H o w M a n y C h i l d r e n ? 9 . 3 W h a t t o N a m e Y o u r C h i l d r e n 9 . 4 H o w t o B e c o m e a P a r e n t : C r e a t i n g S u b d o m a i n s 9 . 5 S u b d o m a i n s o f i n -a d d r . a r p a D o m a i n s 9 . 6 G o o d P a r e n t i n g 9 . 7 M a n a g i n g t h e T r a n s i t i o n t o S u b d o m a i n s 9 . 8 T h e L i f e o f a P a r e n t 1 0 . A d v a n c e d F e a t u r e s a n d S e c u r i t y 1 0 . 1 D N S N O T I F Y ( Z o n e C h a n g e N o t i f i c a t i o n ) 1 0 . 2 W I N S L i n k a g e 1 0 . 3 S y s t e m T u n i n g 1 0 . 4 N a m e S e r v e r A d d r e s s S o r t i n g 1 0 . 5 B u i l d i n g U p a L a r g e S i t e w i d e C a c h e w i t h F o r w a r d e r s 1 0 . 6 A M o r e R e s t r i c t e d N a m e S e r v e r 1 0 . 7 A N o n r e c u r s i v e N a m e S e r v e r 1 0 . 8 S e c u r i n g Y o u r N a m e S e r v e r 1 1 . N e w D N S F e a t u r e s i n W i n d o w s 2 0 0 0 1 1 . 1 A c t i v e D i r e c t o r y 1 1 . 2 D y n a m i c U p d a t e 1 1 . 3 A g i n g a n d S c a v e n g i n g 1 1 . 4 I n c r e m e n t a l Z o n e T r a n s f e r 1 1 . 5 U n i c o d e C h a r a c t e r S u p p o r t 1 2 . n s l o o k u p 1 2 . 1 I s n s l o o k u p a G o o d T o o l ? 1 2 . 2 I n t e r a c t i v e V e r s u s N o n i n t e r a c t i v e 1 2 . 3 O p t i o n S e t t i n g s 1 2 . 4 A v o i d i n g t h e S e a r c h L i s t 1 2 . 5 C o m m o n T a s k s 1 2 . 6 L e s s -C o m m o n T a s k s 1 2 . 7 T r o u b l e s h o o t i n g n s l o o k u p P r o b l e m s 1 2 . 8 B e s t o f t h e N e t 1 3 . T r o u b l e s h o o t i n g D N S 1 3 . 1 I s D N S R e a l l y Y o u r P r o b l e m ? 1 3 . 2 C h e c k i n g t h e C a c h e - 5 - 13 . 3 P o t e n t i a l P r o b l e m L i s t 13 . 4 I n t e r o p e r a b i l i t y P r o b l e m s 13 . 5 P r o b l e m S y m p t o m s 14 . M i s c e l l a n e o u s 14 . 1 U s i n g C N A M E R e c o r d s 14 . 2 W i l d c a r d s 14 . 3 A L i m i t a t i o n o f M X R e c o r d s 14 . 4 D N S a n d I n t e r n e t F i r e w a l l s 14 . 5 D i a l -u p C o n n e c t i o n s 14 . 6 N e t w o r k N a m e s a n d N u m b e r s 14 . 7 A d d i t i o n a l R e s o u r c e R e c o r d s A . D N S M e s s a g e F o r m a t a n d R e s o u r c e R e c o r d s A . 1 M a s t e r F i l e F o r m a t A . 2 D N S M e s s a g e s A . 3 R e s o u r c e R e c o r d D a t a B . I n s t a l l i n g t h e D N S S e r v e r f r o m C D -R O M C . C o n v e r t i n g f r o m B I N D t o t h e M i c r o s o f t D N S S e r v e r C . 1 S t e p 1: C h a n g e t h e D N S S e r v e r S t a r t u p M e t h o d t o F i l e C . 2 S t e p 2 : S t o p t h e M i c r o s o f t D N S S e r v e r C . 3 S t e p 3 : C h a n g e t h e Z o n e D a t a F i l e N a m i n g C o n v e n t i o n C . 4 S t e p 4 : C o p y t h e F i l e s C . 5 S t e p 5 : G e t a N e w R o o t N a m e S e r v e r C a c h e F i l e C . 6 S t e p 6 : R e s t a r t t h e D N S S e r v e r C . 7 S t e p 7 : C h a n g e t h e D N S S e r v e r S t a r t u p M e t h o d t o R e g i s t r y D . T o p -L e v e l D o m a i n s C o l o p h o n - 6 - - 7 - Preface You ma y n ot k n ow muc h a b out t h e D oma i n N a me S y s t e m—y e t —b ut w h e n e v e r y ou us e t h e I n t e r n e t , y ou us e D N S . E v e r y t i me y ou s e n d e l e c t r on i c ma i l or s ur f t h e W e b , y ou r e l y on t h e D oma i n N a me S y s t e m. You s e e , w h i l e y ou, a s a h uma n b e i n g , p r e f e r t o r e me mb e r t h e names of c omp ut e r s , c omp ut e r s l i k e t o a d d r e s s e a c h ot h e r b y n umb e r . O n a n i n t e r n e t , t h a t n umb e r i s 3 2 b i t s l on g , or b e t w e e n z e r o a n d f our b i l l i on or s o. [1 ] T h a t ' s e a s y f or a c omp ut e r t o r e me mb e r b e c a us e c omp ut e r s h a v e l ot s of me mor y i d e a l f or s t or i n g n umb e r s , b ut i t i s n ' t n e a r l y a s e a s y f or us h uma n s . P i c k 1 0 p h on e n umb e r s out of t h e p h on e b ook a t r a n d om, a n d t h e n t r y t o r e c a l l t h e m. N ot e a s y ? N ow f l i p t o t h e f r on t of t h e b ook a n d a t t a c h r a n d om a r e a c od e s t o t h e p h on e n umb e r s . T h a t ' s a b out h ow d i f f i c ul t i t w oul d b e t o r e me mb e r 1 0 a r b i t r a r y i n t e r n e t a d d r e s s e s . [1 ] And, with IP Version 6, it's soon to be a whopping 128 bits long, or between zero and a 39-digit dec im al nu m ber. T h i s i s p a r t of t h e r e a s on w e n e e d t h e D oma i n N a me S y s t e m. D N S h a n d l e s ma p p i n g b e t w e e n h os t n a me s , w h i c h w e h uma n s f i n d c on v e n i e n t , a n d i n t e r n e t a d d r e s s e s , w h i c h c omp ut e r s d e a l w i t h . I n f a c t , D N S i s t h e s t a n d a r d me c h a n i s m on t h e I n t e r n e t f or a d v e r t i s i n g a n d a c c e s s i n g a l l k i n d s of i n f or ma t i on a b out h os t s , n ot j us t a d d r e s s e s . A n d D N S i s us e d b y v i r t ua l l y a l l i n t e r n e t w or k i n g s of t w a r e , i n c l ud i n g e l e c t r on i c ma i l , r e mot e t e r mi n a l p r og r a ms s uc h a s t el net , f i l e t r a n s f e r p r og r a ms s uc h a s f t p , a n d w e b b r ow s e r s s uc h a s N e t s c a p e N a v i g a t or a n d M i c r os of t I n t e r n e t E x p l or e r . A n ot h e r i mp or t a n t f e a t ur e of D N S i s t h a t i t ma k e s h os t i n f or ma t i on a v a i l a b l e al l o v er t h e I n t e r n e t . K e e p i n g i n f or ma t i on a b out h os t s i n a f or ma t t e d f i l e on a s i n g l e c omp ut e r h e l p s on l y us e r s on t h a t c omp ut e r . D N S p r ov i d e s a me a n s of r e t r i e v i n g i n f or ma t i on r e mot e l y f r om a n y w h e r e on t h e n e t w or k . M or e t h a n t h a t , D N S l e t s y ou d i s t r i b ut e t h e ma n a g e me n t of h os t i n f or ma t i on a mon g ma n y s i t e s a n d or g a n i z a t i on s . You d on ' t n e e d t o s ub mi t y our d a t a t o s ome c e n t r a l s i t e or p e r i od i c a l l y r e t r i e v e c op i e s of t h e " ma s t e r " d a t a b a s e . You s i mp l y ma k e s ur e y our s e c t i on , c a l l e d a z o ne, i s up t o d a t e on y our n a me s e r v e r s . Your n a me s e r v e r s ma k e y our z on e ' s d a t a a v a i l a b l e t o a l l t h e ot h e r n a me s e r v e r s on t h e n e t w or k . B e c a us e t h e d a t a b a s e i s d i s t r i b ut e d , t h e s y s t e m a l s o n e e d s t o b e a b l e t o l oc a t e t h e d a t a y ou' r e l ook i n g f or b y s e a r c h i n g a n umb e r of p os s i b l e l oc a t i on s . T h e D oma i n N a me S y s t e m g i v e s n a me s e r v e r s t h e i n t e l l i g e n c e t o n a v i g a t e t h r oug h t h e d a t a b a s e a n d f i n d d a t a i n a n y z on e . O f c our s e , D N S d oe s h a v e a f e w p r ob l e ms . F or e x a mp l e , t h e s y s t e m a l l ow s mor e t h a n on e n a me s e r v e r t o s t or e d a t a a b out a z on e f or r e d un d a n c y ' s s a k e , b ut i n c on s i s t e n c i e s c a n c r op up b e t w e e n c op i e s of t h e z on e d a t a . T h e w or s t p r ob l e m w i t h D N S i s t h a t d e s p i t e i t s w i d e s p r e a d us e on t h e I n t e r n e t , t h e r e ' s r e a l l y v e r y l i t t l e d oc ume n t a t i on a b out ma n a g i n g a n d ma i n t a i n i n g i t . M os t a d mi n i s t r a t or s on t h e I n t e r n e t ma k e d o w i t h t h e d oc ume n t a t i on t h e i r v e n d or s s e e f i t t o p r ov i d e a n d w i t h w h a t e v e r t h e y c a n g l e a n f r om f ol l ow i n g t h e I n t e r n e t ma i l i n g l i s t s a n d U s e n e t n e w s g r oup s on t h e s ub j e c t . T h i s l a c k of d oc ume n t a t i on me a n s t h a t t h e un d e r s t a n d i n g of a n e n or mous l y i mp or t a n t i n t e r n e t s e r v i c e —on e of t h e l i n c h p i n s of t od a y ' s I n t e r n e t —i s e i t h e r h a n d e d d ow n f r om a d mi n i s t r a t or t o a d mi n i s t r a t or l i k e a c l os e l y g ua r d e d f a mi l y r e c i p e or r e l e a r n e d r e p e a t e d l y b y i s ol a t e d p r og r a mme r s a n d e n g i n e e r s . N e w z on e a d mi n i s t r a t or s s uf f e r t h r oug h t h e s a me mi s t a k e s ma d e b y c oun t l e s s ot h e r s . - 8 - Our aim with this book is to help remed y this situation . W e realiz e that n ot all of y ou hav e the time or the d esire to bec ome D N S ex p erts. M ost of y ou, af ter all, hav e p len ty to d o besid es man ag in g y our z on es an d n ame serv ers: sy stem ad min istration , n etwork en g in eerin g , or sof tware d ev elop men t. I t takes an awf ully big in stitution to d ev ote a whole p erson to D N S . W e' ll try to g iv e y ou en oug h in f ormation to allow y ou to d o what y ou n eed to d o, whether that' s run n in g a small z on e or man ag in g a multin ation al mon strosity , ten d in g a sin g le n ame serv er or shep herd in g a hun d red of them. R ead as muc h as y ou n eed to kn ow n ow, an d c ome bac k later if y ou n eed to kn ow more. D N S is a big top ic —big en oug h to req uire two authors, an y way —but we' v e tried to p resen t it as sen sibly an d un d erstan d ably as p ossible. T he f irst two c hap ters g iv e y ou a g ood theoretic al ov erv iew an d en oug h p rac tic al in f ormation to g et by , an d later c hap ters f ill in the n itty -g ritty d etails. W e p rov id e a road map up f ron t to sug g est a p ath throug h the book ap p rop riate f or y our j ob or in terest. W hen we talk about ac tual D N S sof tware, we' ll c on c en trate on the M ic rosof t D N S S erv er, whic h is a p op ular imp lemen tation of the D N S sp ec s in c lud ed in W in d ows 2 0 0 0 S erv er ( an d W in d ows N T S erv er 4 . 0 bef ore it) . W e' v e tried to d istill our ex p erien c e in man ag in g an d main tain in g z on es in to this book ( On e of our z on es, in c id en tally , was on c e on e of the larg est on the I n tern et, but that was a lon g time ag o. ) W e hop e that this book will help y ou g et ac q uain ted with D N S on W in d ows 2 0 0 0 if y ou' re j ust startin g out, ref in e y our un d erstan d in g if y ou' re alread y f amiliar with it, an d p rov id e v aluable in sig ht an d ex p erien c e ev en if y ou kn ow it like the bac k of y our han d . Versions T his book d eals with n ame serv ers that run on W in d ows 2 0 0 0 S erv er, p artic ularly the M ic rosof t D N S S erv er. W e will also oc c asion ally men tion other n ame serv ers that run on W in d ows 2 0 0 0 , esp ec ially p orts of B I N D , a p op ular imp lemen tation of the D N S sp ec if ic ation s. H owev er, if y ou n eed a book on B I N D , we sug g est this book' s sister ed ition , DNS and BIND by P aul A lbitz an d C ric ket L iu ( O' R eilly ) . T his book is essen tially a W in d ows 2 0 0 0 ed ition of DNS and BIND. W e use ns l o o k u p , a n ame serv er utility p rog ram, a g reat d eal in our ex amp les. T he v ersion of ns l o o k u p we use is the on e ship p ed with W in d ows 2 0 0 0 S erv er. Other v ersion s of ns l o o k u p p rov id e similar f un c tion ality to that in the W in d ows ns l o o k u p . W e hav e tried to use c omman d s c ommon to most ns l o o k u p s in our ex amp les; when this was n ot p ossible, we tried to n ote it. W h a t ' s N ew in T h is E d it ion T he f irst ed ition of this book was c alled DNS o n W i ndo w s NT an d d ealt with M ic rosof t' s D N S imp lemen tation f or that op eratin g sy stem. T his n ew ed ition has been c omp rehen siv ely up d ated to d oc umen t the man y c han g es to D N S , larg e an d small, f oun d in W in d ows 2 0 0 0 . T he most sig n if ic an t n ew f eature in W in d ows 2 0 0 0 is A c tiv e D irec tory , an d this ed ition d esc ribes how A c tiv e D irec tory d ep en d s on D N S , in c lud in g the ex tra D N S resourc e rec ord s req uired f or a d omain c on troller to f un c tion p rop erly . Other n ew D N S f eatures ex p lain ed are d y n amic up d ate, in c remen tal z on e tran sf er, an d storin g D N S z on e in f ormation in A c tiv e D irec tory itself rather than in a tex t f ile on d isk. T he n ew material ap p ears throug hout the book, but man y f eatures are d esc ribed in a n ew c hap ter f or this ed ition , C hap ter 1 1 . T he resolv er, or c lien t sid e of D N S , has also c han g ed in W in d ows 2 0 0 0 , an d C hap ter 6 has been up d ated to d oc umen t the behav ior of the W in d ows 2 0 0 0 an d W in d ows 9 8 resolv ers. - 9 - Organization This book is organized, more or less, to follow the evolution of a zone and its administrator. C hap ter 1 and C hap ter 2 disc uss D omain N ame S y stem theory . C hap ter 3 through C hap ter 6 help y ou to dec ide whether to set up y our own zones, then desc ribe how to go about it, should y ou c hoose to. The middle c hap ters, C hap ter 7 through C hap ter 1 1 , desc ribe how to maintain y our zones, c onfigure hosts to use y our name servers, p lan for the growth of y our zones, c reate subdomains, sec ure y our name servers, and integrate D N S with A c tive D irec tory . The last c hap ters, C hap ter 1 2 through C hap ter 1 4 , deal with c ommon p roblems and troubleshooting tools. H ere' s a more detailed, c hap ter-by -c hap ter breakdown: • C hap ter 1 p rovides a little historic al p ersp ec tive and disc usses the p roblems that motivated the develop ment of D N S , then p resents an overview of D N S theory . • C hap ter 2 goes over D N S theory in more detail, inc luding the D N S namesp ac e, domains, and name servers. W e also introduc e imp ortant c onc ep ts suc h as name resolution and c ac hing. • C hap ter 3 c overs how to c hoose and ac q uire y our D N S software if y ou don' t already have it and what to do with it onc e y ou' ve got it; that is, how to figure out what y our domain name should be and how to c ontac t the organization that c an delegate y our domain to y ou. • C hap ter 4 details how to set up y our first two name servers, inc luding c reating y our name server database, starting up y our name servers, and c hec king their op eration. • C hap ter 5 deals with D N S ' s M X rec ord, whic h allows administrators to sp ec ify alternate hosts to handle a given destination' s mail. The c hap ter c overs mail-routing strategies for a variety of networks and hosts, inc luding networks with sec urity firewalls and hosts without direc t I nternet c onnec tivity . • C hap ter 6 ex p lains how to c onfigure a W indows resolver. • C hap ter 7 desc ribes the p eriodic maintenanc e administrators must p erform to keep their domains running smoothly , suc h as c hec king name server health and authority . • C hap ter 8 c overs how to p lan for the growth and evolution of y our domain, inc luding how to get big and how to p lan for moves and outages. • C hap ter 9 ex p lores the j oy s of bec oming a p arent domain. W e ex p lain when to bec ome a p arent ( i.e., c reate subdomains) , what to c all y our c hildren, how to c reate them ( ! ) , and how to watc h over them. • C hap ter 1 0 goes over less c ommon name server c onfiguration op tions that c an help y ou tune y our name server' s op eration, sec ure y our name server, and ease administration. • C hap ter 1 1 desc ribes the new bells and whistles in M ic rosoft' s D N S imp lementation for W indows 2 0 0 0 that weren' t p resent in W indows N T. • C hap ter 1 2 shows the ins and outs of the most p op ular tool for doing D N S debugging, inc luding tec hniq ues for digging obsc ure information out of remote name servers. • C hap ter 1 3 c overs many c ommon D N S p roblems and their solutions and then desc ribes a number of less c ommon, harder-to-diagnose sc enarios. • C hap ter 1 4 ties up all the loose ends. W e c over D N S wildc arding; sp ec ial c onfigurations for networks that c onnec t to the I nternet through firewalls; hosts and networks with intermittent I nternet c onnec tivity via dial-up ; network name enc oding; and new, ex p erimental rec ord ty p es. • A p p endix A c ontains a by te-by -by te breakdown of the formats used in D N S q ueries and resp onses as well as a c omp rehensive list of the c urrently defined resourc e rec ord ty p es. • A p p endix B desc ribes how to load the M ic rosoft D N S S erver from the W indows 2 0 0 0 S erver C D -R O M . • A p p endix C c overs migrating from an ex isting B I N D 4 name server to the M ic rosoft D N S S erver. • A p p endix D lists the c urrent top -level domains in the I nternet domain namesp ac e. - 10 - Audience This book is intended primarily for Windows 2000 system administrators who manag e z ones and one or more name serv ers, bu t it also inc lu des material for network eng ineers, postmasters, and others. N ot all the book' s c hapters will be eq u ally interesting to a div erse au dienc e, thou g h, and you don' t want to wade throu g h 1 4 c hapters to find the information pertinent to you r j ob. We hope this road map will help you plot you r way throu g h the book. System administrators setting up their first zones shou ld read C hapter 1 and C hapter 2 for D N S theory, C hapter 3 for information on g etting started and selec ting a g ood domain name, then C hapter 4 and C hapter 5 to learn how to set u p a z one for the first time. C hapter 6 ex plains how to c onfig u re hosts to u se the new name serv ers. S oon after, they shou ld read C hapter 7 , whic h ex plains how to " flesh ou t" their implementation by setting u p additional name serv ers and adding additional z one data. C hapter 1 2 and C hapter 1 3 desc ribe u sefu l trou bleshooting tools and tec hniq u es. E x perienc ed administrators may benefit from reading C hapter 6 to learn how to c onfig u re D N S resolv ers on different hosts and C hapter 7 for information on maintaining their z ones. C hapter 8 c ontains instru c tions on how to plan for a z one' s g rowth and ev olu tion, whic h shou ld be espec ially v alu able to administrators of larg e z ones. C hapter 9 ex plains parenting —c reating su bdomains— whic h is essential reading for those c onsidering the big mov e. C hapter 1 0 c ov ers sec u rity featu res of the M ic rosoft D N S S erv er, many of whic h may be u sefu l for ex perienc ed administrators. The new-to-Windows 2000 featu res c ov ered in C hapter 1 1 will be helpfu l to ex perienc ed administrators making the j u mp from Windows N T. C hapter 1 2 and C hapter 1 3 desc ribe tools and tec hniq u es for trou bleshooting , whic h ev en adv anc ed administrators may find worth reading . System administrators on netw ork s w ithout ful l I nternet c onnec tiv ity shou ld read C hapter 5 to learn how to c onfig u re mail on su c h networks and C hapter 1 4 to learn how to set u p an independent D N S infrastru c tu re. N etw ork administrators not direc tl y responsib l e for any zones shou ld still read C hapter 1 and C hapter 2 for D N S theory, then C hapter 1 2 to learn how to u se nsl ook up, plu s C hapter 1 3 for trou bleshooting tac tic s. P ostmasters shou ld read C hapter 1 and C hapter 2 for D N S theory, then C hapter 5 to find ou t how D N S and elec tronic mail c oex ist. C hapter 1 2, whic h desc ribes nsl ook up, will also help postmasters dig mail rou ting information ou t of the domain namespac e. I nterested users c an read C hapter 1 and C hapter 2 for D N S theory, and then whatev er else they like! N ote that we assu me you ' re familiar with basic Windows 2000 system administration and TC P / I P networking . We don' t assu me you hav e any other spec ializ ed knowledg e, thou g h. When we introdu c e a new term or c onc ept, we' ll do ou r best to define or ex plain it. Whenev er possible, we' ll u se analog ies from Windows ( and from the real world) to help you u nderstand. O b t a ining t h e E x a m p l e P r o g r a m s The ex ample prog rams in this book are av ailable from this U R L : http: / / www. oreilly. c om/ c atalog / dnswin2/ E x trac t the files from the arc hiv e u sing WinZ ip by typing : [...]... or this edition, L ev on E sibov , as w ell as J on F orrest and D av id B lank-E delman, technical rev iew ers f or D N S o n W in d o w s N T , f or their inv aluable contributions to this book Paul R obichaux prov ided assistance f rom his w ealth of E x change know ledge f or C hapter 5 , and J ohn Peterson of f ered helpf ul suggestions based on his production W indow s 2 0 0 0 env ironment M att... masters and sec ondary masters A primary master name server for a z one reads the data for the z one from a file on its host A sec o n d ary master name server for a z one gets the z one data from the name server that is authoritative for the z one, c alled its master server Q uite often, the master server is the z one's primary master, b ut that's not req uired: a sec ondary master c an load z one data from... now, it' s imp ortant onl y that y ou understand that the term del egation refers to assigning resp onsibil ity for a subdomain to another organization 2.4 Name Servers and Zones T he p rograms that store information about the domain namesp ace are cal l ed nam e serv ers N ame servers general l y have comp l ete information about some p art of the domain namesp ace, cal l ed a z one, which they l oad... a t io n 1.2 On the Internet and Internets A word on "the Internet," and on "internets" in general, is in order In print, the dif f erenc e b etween the two seem s slight: one is alway s c apitaliz ed, one isn' t T he distinc tion b etween their m eanings, howev er, is signif ic ant T he Internet, with a c apital "I," ref ers to the network that b egan its lif e as the AR P AN E T and c ontinu es today... doesn't necessarily mean that you have to set up and run zones by yourself f o r yourself I f you've g ot only a handf ul of hosts, you may b e ab le to j oin an ex isting zone ( see C hapter 3 ) or f ind someone else to host your zones f or you I f you pay an I nternet service provider f or your I nternet connectivity, ask if they'll host your zone f or you, too E ven if you aren't already a customer,... more, you'll prob ab ly w ant your ow n zone A nd if you w ant direct control over your zone and your name servers, you'll w ant to manag e it yourself R ead on! 1.5.2 If You Have Your Own TCP/IP-B as ed Int ernet you prob ab ly w ant D N S B y an internet, w e don't mean j ust a sing le E thernet of w ork stations using T C P / I P ( see the nex t section if you thoug ht that w as w hat w e meant)... are children of the sam e p arent—hav e dif f erent labels T his restriction g uarantees that a dom ain nam e uniq uely identif ies a sing le node in the tree T he restriction really isn' t a lim itation, because the labels need to be uniq ue only am ong the children, not am ong all the nodes in the tree T he sam e restriction ap p lies to the W indows 20 0 0 f ilesy stem : y ou can' t g iv e two sibling... v ic es, also d on' t hav e any r elationship to D N S d omains A c tiv e D ir ec tor y d omains, - 26 - however, are DNS domains We discuss the relationship between DNS and Active Directory domains in C hapter 1 1 Domain names at the leaves of the tree g enerally represent individual hosts, and they may point to network addresses, hardware inf ormation, and mail-routing inf ormation Domain names... depends on the contex t in which you use it Sending mail to someone at h p c o m would return mail-routing inf ormation, while te l ne ting to the domain name would look up the host inf ormation ( in F ig ure 2 -6, f or ex ample, h p c o m ' s I P address) [2] [2] The terms "domain" and "subdomain" are often used interchangeably, or nearly so, in DNS documentation Here, we use "subdomain" only as a relativ... additional inf ormation Y ou can access this page at: http:/ / w w w oreilly com/ catalog/ dnsw in2 / T o comment or ask technical questions about this book, send email to: bookquestions@ oreilly com F or more inf ormation about books, conf erences, sof tw are, R esource C enters, and the O ' R eilly N etw ork, see the O ' R eilly w eb site at: http:/ / w w w oreilly com Q u otati ons T he L ew is . to c onfig u re D N S resolv ers on different hosts and C hapter 7 for information on maintaining their z ones. C hapter 8 c ontains instru c tions on how. tain in g z on es in to this book ( On e of our z on es, in c id en tally , was on c e on e of the larg est on the I n tern et, but that was a lon g time

Ngày đăng: 11/12/2013, 01:15

Xem thêm: Tài liệu DNS on Windows 2000 pptx, Tài liệu DNS on Windows 2000 pptx

Từ khóa liên quan

Tài liệu cùng người dùng

Tài liệu liên quan